Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-2082

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2015-2082
Last Modified 26 Feb 2015 02:13:16
Published 25 Feb 2015 05:59:02
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2015-2082

Summary

Cross-site scripting (XSS) vulnerability in Login.aspx in UNIT4 Prosoft HRMS before 8.14.330.43 allows remote attackers to inject arbitrary web script or HTML via the txtUserID parameter.

Vulnerable Systems

Application

  • Unit4 Prosoft Hrms 8.14.230.47


References

BUGTRAQ - 20150213 UNIT4 Prosoft HRMS XSS Vulnerability

MISC - http://packetstormsecurity.com/files/130396/UNIT4-Prosoft-HRMS-8.14.230.47-Cross-Site-Scripting.html


Last Updated: 27 May 2016 11:07:57